CVE-2008-5856

Published Jan 6, 2009

Last updated 7 years ago

CVSS info 5.0

Overview

Description: Directory traversal vulnerability in scripts/export.php in ClaSS before 0.8.61 allows remote attackers to read arbitrary files via directory traversal sequences in the ftype parameter.
Source: cve@mitre.org
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 5
Impact score: 2.9
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:P/I:N/A:N

Weaknesses

nvd@nist.gov: CWE-22

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:class:class:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DD8B715E-81D5-43B5-A700-76FDCB1A870F",
            "versionEndIncluding": "0.8.60"
          },
          {
            "criteria": "cpe:2.3:a:class:class:0.4:beta:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D9C5BB72-0004-4D98-8866-6E7BBB6DAF7A"
          },
          {
            "criteria": "cpe:2.3:a:class:class:0.4.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8B888BE7-707B-4046-BD76-A87ECBC6F515"
          },
          {
            "criteria": "cpe:2.3:a:class:class:0.4.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CA5BCF82-6773-4FCB-8665-0CC7A35239A0"
          },
          {
            "criteria": "cpe:2.3:a:class:class:0.4.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A3CA80E8-66C1-41D2-8283-42EE59CB8721"
          },
          {
            "criteria": "cpe:2.3:a:class:class:0.5.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B6E042AB-AB85-4956-BDA4-17C104FA5D21"
          },
          {
            "criteria": "cpe:2.3:a:class:class:0.5.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "45AC2C2A-C716-4C3F-9EBC-8884953528D8"
          },
          {
            "criteria": "cpe:2.3:a:class:class:0.5.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B2559798-F041-4011-97E6-02EBADB0E109"
          },
          {
            "criteria": "cpe:2.3:a:class:class:0.6.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "14312A02-E8D0-4F2A-9D25-E9BAC21D9696"
          },
          {
            "criteria": "cpe:2.3:a:class:class:0.6.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3FB5EF4B-696C-48F6-AE1B-5355FA49AEB3"
          },
          {
            "criteria": "cpe:2.3:a:class:class:0.8:rc2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "97A097A7-1502-4A4C-B97D-1F06AFF234CA"
          },
          {
            "criteria": "cpe:2.3:a:class:class:0.8.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "97C82A30-50F0-4CB6-A67D-AB8BDFEBD3D0"
          },
          {
            "criteria": "cpe:2.3:a:class:class:0.8.0:rc1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EB655523-5F80-4F74-A99A-2692BCA93869"
          },
          {
            "criteria": "cpe:2.3:a:class:class:0.8.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FBC42BCD-50F0-4535-A6C1-6818EEE41F9F"
          },
          {
            "criteria": "cpe:2.3:a:class:class:0.8.8:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E31F91D2-E08F-44B2-8E04-9E62D1AD04E5"
          },
          {
            "criteria": "cpe:2.3:a:class:class:0.8.10:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CD3A1376-8B22-4224-9224-68761A202828"
          },
          {
            "criteria": "cpe:2.3:a:class:class:0.8.14:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E3AA3302-F980-4276-85E3-51B92918B29A"
          },
          {
            "criteria": "cpe:2.3:a:class:class:0.8.20:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "042D78DC-A93A-4FDB-A178-751DEEB10D5B"
          },
          {
            "criteria": "cpe:2.3:a:class:class:0.8.26:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "868FD90C-8F2F-48C1-9882-D22358257440"
          },
          {
            "criteria": "cpe:2.3:a:class:class:0.8.29:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F748B589-485B-429A-8CF0-80D893194DC3"
          },
          {
            "criteria": "cpe:2.3:a:class:class:0.8.32:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "08023129-886D-4C37-A3C9-4726E39F59CB"
          },
          {
            "criteria": "cpe:2.3:a:class:class:0.8.40:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "931EF294-922C-47AB-B109-A13E4DEF25AA"
          },
          {
            "criteria": "cpe:2.3:a:class:class:0.8.47:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E3BBEA4A-3950-45C1-83AC-F46E15F00E9B"
          },
          {
            "criteria": "cpe:2.3:a:class:class:0.8.51:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0AAE82F7-FF36-4D60-8306-21A8100951A6"
          },
          {
            "criteria": "cpe:2.3:a:class:class:0.8.56:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C36FF15E-FA87-480B-94EC-3655B124371E"
          },
          {
            "criteria": "cpe:2.3:a:class:class:0.8.59:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "57745199-6F99-4FD4-B845-0A6F58636E0A"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References